Package org.nuxeo.ecm.platform.oauth.keys

Class OAuthServerKeyManagerImpl

java.lang.Object

org.nuxeo.runtime.model.DefaultComponent

org.nuxeo.ecm.platform.oauth.keys.OAuthServerKeyManagerImpl

All Implemented Interfaces:

OAuthServerKeyManager, Adaptable, Component, Extensible, TimestampedService

public class OAuthServerKeyManagerImpl
extends DefaultComponent
implements OAuthServerKeyManager

Implements the OAuthServerKeyManager interface. Manages an extention point to configure RSA Key Pair. Shindig/Nuxeo HMAC shared secret is dynamically generated at startup time (and shared between Nuxeo OAUth Filter and Shindig directly in memory).

Author:

tiry

Nested Class Summary

Nested Classes

Modifier and Type	Class	Description
protected class	OAuthServerKeyManagerImpl.InternalNuxeoOAuthConsumer

Field Summary

Fields

Modifier and Type	Field	Description
protected NuxeoOAuthConsumer	consumer
protected String	internalKey
protected String	internalSecret
protected ServerKeyDescriptor	serverKeyDescriptor
static final String	XP_SERVER_KEY

Fields inherited from class org.nuxeo.runtime.model.DefaultComponent

lastModified, name

Constructor Summary

Constructors

Constructor	Description
OAuthServerKeyManagerImpl()

Method Summary

Modifier and Type	Method	Description
void	activate(ComponentContext context)	Activates the component.
String	getBarePrivateKey()	Returns the Private Key used by Nuxeo server to do RSA Signing.
String	getBarePublicCertificate()	Returns the Public Key certificate used by Nuxeo server to do RSA Signing.
NuxeoOAuthConsumer	getInternalConsumer()	Returns the NuxeoOAuthConsumer representing local (embedded) Shindig instance.
String	getInternalKey()	Returns the consumerKey used in Shindig => Nuxeo sign fetch.
String	getInternalSecret()	Returns the consumerSecret (HMAC) used in Shindig => Nuxeo sign fetch.
String	getKeyName()	Returns key name (not really used).
String	getPrivateKey()	Returns the Private Key used by Nuxeo server to do RSA Signing.
String	getPublicKeyCertificate()	Returns the Public Key certificate used by Nuxeo server to do RSA Signing.
void	registerContribution(Object contribution, String extensionPoint, ComponentInstance contributor)
protected String	stripOpenSSL(String key)
void	unregisterContribution(Object contribution, String extensionPoint, ComponentInstance contributor)

Methods inherited from class org.nuxeo.runtime.model.DefaultComponent

addRuntimeMessage, addRuntimeMessage, deactivate, getAdapter, getDescriptor, getDescriptors, getLastModified, getRegistry, register, registerExtension, setLastModified, setModifiedNow, setName, start, stop, unregister, unregisterExtension

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface org.nuxeo.runtime.model.Component

getApplicationStartedOrder

Field Details

serverKeyDescriptor

protected ServerKeyDescriptor serverKeyDescriptor

XP_SERVER_KEY

public static final String XP_SERVER_KEY

See Also:

• Constant Field Values

consumer

protected NuxeoOAuthConsumer consumer

internalKey

protected String internalKey

internalSecret

protected String internalSecret

Constructor Details

OAuthServerKeyManagerImpl

public OAuthServerKeyManagerImpl()

Method Details

activate

public void activate(ComponentContext context)

Description copied from interface: Component

Activates the component.

This method is called by the runtime when a component is activated.

Specified by:

activate in interface Component

Overrides:

activate in class DefaultComponent

Parameters:

context - the runtime context

registerContribution

public void registerContribution(Object contribution,
 String extensionPoint,
 ComponentInstance contributor)

Overrides:

registerContribution in class DefaultComponent

unregisterContribution

public void unregisterContribution(Object contribution,
 String extensionPoint,
 ComponentInstance contributor)

Overrides:

unregisterContribution in class DefaultComponent

getPublicKeyCertificate

public String getPublicKeyCertificate()

Description copied from interface: OAuthServerKeyManager

Returns the Public Key certificate used by Nuxeo server to do RSA Signing.

Specified by:

getPublicKeyCertificate in interface OAuthServerKeyManager

getBarePublicCertificate

public String getBarePublicCertificate()

Description copied from interface: OAuthServerKeyManager

Returns the Public Key certificate used by Nuxeo server to do RSA Signing. (Removes OpenSSL decorators).

Specified by:

getBarePublicCertificate in interface OAuthServerKeyManager

getPrivateKey

public String getPrivateKey()

Description copied from interface: OAuthServerKeyManager

Returns the Private Key used by Nuxeo server to do RSA Signing.

Specified by:

getPrivateKey in interface OAuthServerKeyManager

getBarePrivateKey

public String getBarePrivateKey()

Description copied from interface: OAuthServerKeyManager

Returns the Private Key used by Nuxeo server to do RSA Signing. (Removes OpenSSL decorators).

Specified by:

getBarePrivateKey in interface OAuthServerKeyManager

getKeyName

public String getKeyName()

Description copied from interface: OAuthServerKeyManager

Returns key name (not really used).

Specified by:

getKeyName in interface OAuthServerKeyManager

stripOpenSSL

protected String stripOpenSSL(String key)

getInternalKey

public String getInternalKey()

Description copied from interface: OAuthServerKeyManager

Returns the consumerKey used in Shindig => Nuxeo sign fetch.

Specified by:

getInternalKey in interface OAuthServerKeyManager

getInternalSecret

public String getInternalSecret()

Description copied from interface: OAuthServerKeyManager

Returns the consumerSecret (HMAC) used in Shindig => Nuxeo sign fetch.

Specified by:

getInternalSecret in interface OAuthServerKeyManager

getInternalConsumer

public NuxeoOAuthConsumer getInternalConsumer()

Description copied from interface: OAuthServerKeyManager

Returns the NuxeoOAuthConsumer representing local (embedded) Shindig instance.

Specified by:

getInternalConsumer in interface OAuthServerKeyManager